Privacy Policy

1. About simlir

simlir is a product data API. We maintain a structured product database and provide access to it via a REST API and an MCP server for integrations. This privacy policy covers the simlir website (simlir.com), the simlir API, and the simlir B2B dashboard.

2. What We Collect

Public website visitors

When you visit simlir.com (including the /demo page), we collect:

• Anonymous page-view analytics via Vercel Analytics (no cookies, no personal identifiers)
• Performance metrics via Vercel Speed Insights

We do not use cookies, tracking pixels, or browser fingerprinting on the public website.

API customers (B2B)

When you create a simlir account via the B2B dashboard, we collect:

• Email address and name (via Google OAuth)
• Company name (optional, entered by you)
• API usage logs: endpoint called, timestamp, credit cost, response time
• Payment information processed securely by Stripe (we do not store card details)

3. How We Use Data

• To provide and improve the simlir API and product database
• To bill API customers accurately based on credit usage
• To monitor service health and detect abuse
• To publish aggregate data quality metrics on our public quality page

We never sell personal data. Aggregate, anonymised API usage statistics may be used internally to improve the product.

4. Third-Party Services

simlir uses the following third-party services that may process data on our behalf:

• Supabase — database hosting and authentication
• Vercel — website hosting and analytics
• Stripe — payment processing (B2B dashboard only)
• Google OAuth — sign-in for B2B dashboard and staff portal
• Sentry — error monitoring (no personal data sent)

Each service has its own privacy policy. We select processors that comply with UK GDPR.

5. Cookies

The simlir public website does not set any cookies. The B2B dashboard uses a session cookie set by Supabase Auth to keep you signed in. No third-party tracking cookies are used anywhere on simlir.

6. Your Rights (UK GDPR)

Under the UK General Data Protection Regulation, you have the right to access, correct, and delete your personal data. If you have a B2B dashboard account, you can request deletion of your account and associated data by contacting us.

If you are a public website visitor, we do not hold any personal data about you.

7. Data Retention

Product data (specs, prices, embeddings) is retained indefinitely as it is the core asset of our service. This data is sourced from public retailer pages and contains no personal information.

B2B account data and API usage logs are retained for the duration of your account plus 12 months after account closure, or as required by law.

8. Contact

For any privacy-related questions, contact us at privacy@simlir.com.

9. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated “Last updated” date. Continued use of simlir after changes constitutes acceptance of the revised policy.